DRIVERS-3232 Fix second aws credential handling

blink1073 · blink1073 · commit 2630feb4e8b0 · 2025-09-25T10:43:23.000-05:00
diff --git a/.github/workflows/update-action-tag.yml b/.github/workflows/update-action-tag.yml
@@ -32,17 +32,17 @@ jobs:
           aws_region_name: ${{ vars.AWS_REGION_NAME }}
           aws_secret_id: ${{ secrets.AWS_SECRET_ID }}
 
-      - name: Remove the existing tag
-        run: |
-          export VERSION=$(cat .github/workflows/version.txt)
-          echo "VERSION=$VERSION" >> $GITHUB_ENV
-          git push origin ":v${VERSION}" || true
-
-      - name: Create a new signed tag
-        uses: ./git-sign
-        with:
-          command: git tag -a \"v${{ env.VERSION }}\" -m \"Update tag\" -s --local-user=${{ env.GPG_KEY_ID }}
-
-      - name: Push the tag
-        run:
-            git push origin --tags
+      # - name: Remove the existing tag
+      #   run: |
+      #     export VERSION=$(cat .github/workflows/version.txt)
+      #     echo "VERSION=$VERSION" >> $GITHUB_ENV
+      #     git push origin ":v${VERSION}" || true
+
+      # - name: Create a new signed tag
+      #   uses: ./git-sign
+      #   with:
+      #     command: git tag -a \"v${{ env.VERSION }}\" -m \"Update tag\" -s --local-user=${{ env.GPG_KEY_ID }}
+
+      # - name: Push the tag
+      #   run:
+      #       git push origin --tags
diff --git a/setup/action.yml b/setup/action.yml
@@ -40,6 +40,7 @@ runs:
       role-to-assume: ${{ inputs.aws_role_arn }}
       role-session-name: release-session
       aws-region: ${{ inputs.aws_region_name }}
+      unset-current-credentials: true
   - name: Read secrets from AWS Secrets Manager into environment variables
     uses: aws-actions/aws-secretsmanager-get-secrets@5e19ff380d035695bdd56bbad320ca535c9063f2 # v2
     with:
